Method and system for enabling seamless roaming in a wireless network

US 20020035699A1
Filed: 07/23/2001
Published: 03/21/2002
Est. Priority Date: 07/24/2000
Status: Active Grant

First Claim

Patent Images

1. A method for authorizing access by a user to a resource over a wireless local area network, comprising the steps of:

setting access privileges to the resource for a cluster of users of the wireless local area network;

receiving a request from a device controlled by the user to access the resource over the wireless local area network, the user having a membership in the cluster, and the request including a user identifier for the user and a device identifier for the device making the request;

locating access privileges based on the device identifier, the user identifier, and the cluster; and

authorizing a current session between the device and the resource based on the located access privileges.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A gateway server manages connections in a wireless local area network (WLAN). The gateway server provides context information, such as an IP address, that is stored after being previously allocated to a mobile device in a previous connection to the WLAN. The gateway server reassigns the IP address to the mobile device after it reconnects to the WLAN after a disconnection, thus providing seamless roaming for the mobile device from WLAN to WLAN (or subnets within one WLAN) without requiring the user of the device to re-register. The gateway server also provides cluster information (e.g., as part of the context information) for a mobile device making a new connection to the WLAN, such as access privileges associated with the cluster of users of the mobile devices. The gateway server also provides load balancing among two or more WLAN'"'"'s by directing a newly connection mobile device to another WLAN (or subnet), if less congestion results.

546 Citations

21 Claims

1. A method for authorizing access by a user to a resource over a wireless local area network, comprising the steps of:
- setting access privileges to the resource for a cluster of users of the wireless local area network;
  
  receiving a request from a device controlled by the user to access the resource over the wireless local area network, the user having a membership in the cluster, and the request including a user identifier for the user and a device identifier for the device making the request;
  
  locating access privileges based on the device identifier, the user identifier, and the cluster; and
  
  authorizing a current session between the device and the resource based on the located access privileges.

2. A system comprising a digital processor for authorizing access by a user to a resource over a wireless local area network, the system comprising:
- a gateway application executing on the digital processor for setting access privileges to the resource for a cluster of users of the wireless local area network; and
  
  a communications interface coupled with the digital processor for receiving a request from a device controlled by the user to access the resource over the wireless local area network, the user having a membership in the cluster, and the request including a user identifier for the user and a device identifier for the device making the request, the gateway application being responsive to the received request and locating access privileges based on the device identifier, the user identifier, and the cluster and the gateway application authorizing a current session between the device and the resource based on the located access privileges.

3. A computer program product that includes a computer usable medium having computer program instructions stored thereon for authorizing access by a user to a resource over a wireless local area network, such that the computer program instructions, when performed by a digital processor, cause the digital processor to:
- set access privileges to the resource for a cluster of users of the wireless local area network;
  
  receive a request from a device controlled by the user to access the resource over the wireless local area network, the user having a membership in the cluster, and the request including a user identifier for the user and a device identifier for the device making the request;
  
  locate access privileges based on the device identifier, the user identifier, and the cluster; and
  
  authorize a current session between the device and the resource based on the located access privileges.

4. A method for managing context information for a wireless local area network, comprising the steps of:
- receiving a request to access the resource over the wireless local area network, the request including a device identifier for a device making the request;
  
  locating context information associated with the device identifier, the context information associated with a previous session between the device and the resource; and
  
  providing the context information for use in a current session between the device and the resource.
- View Dependent Claims (5, 6, 7, 8, 9, 10)
- - 5. The method of claim 4, wherein the wireless local area network is based on a radio frequency suitable for use in local wireless communications.
  - 6. The method of claim 4, wherein communications over the wireless local area network are based on a spread-spectrum technique based on a carrier frequency greater than about 2,000 megahertz.
  - 7. The method of claim 4, wherein the device identifier is a unique identification number.
  - 8. The method of claim 4, wherein the context information includes an internet protocol address assigned to the device in the previous secure session.
  - 9. The method of claim 4, wherein the context information includes cluster information associated with a user of the device for the current session, the user having a membership in the cluster, and the cluster information providing access privileges associated with a member of the cluster who set the access privileges for the cluster in a previous request to access the resource.
  - 10. The method of claim 4, wherein the device is a voice-enabled communications device, and the gateway server is adapted for voice-enabled network communications.

11. A system comprising a digital processor for managing context information for a wireless local area network, the system comprising:
- a communications interface coupled with the digital processor for receiving a request to access the resource over the wireless local area network, the request including a device identifier for a device making the request; and
  
  a gateway application executing on the digital processor, in response to the received request, the gateway application locating context information associated with the device identifier, the context information associated with a previous session between the device and the resource, and providing the context information for use in a current session between the device and the resource.
- View Dependent Claims (12, 13, 14, 15, 16, 17)
- - 12. The system of claim 11, wherein the wireless local area network is based on a radio frequency suitable for use in local wireless communications.
  - 13. The system of claim 11, wherein communications over the wireless local area network are based on a spread-spectrum technique based on a carrier frequency greater than about 2,000 megahertz.
  - 14. The system of claim 11, wherein the device identifier is a unique identification number.
  - 15. The system of claim 11, wherein the context information includes an internet protocol address assigned to the device in the previous secure session.
  - 16. The system of claim 11, wherein the context information includes cluster information associated with a user of the device for the current session, the user having a membership in the cluster, and the cluster information providing access privileges associated with a member of the cluster who set the access privileges for the cluster in a previous request to access the resource.
  - 17. The system of claim 11, wherein the device is a voice-enabled communications device, and the gateway server is adapted for voice-enabled network communications.

18. A computer program product that includes a computer usable medium having computer program instructions stored thereon for managing context information for a wireless local area network, such that the computer program instructions, when performed by a digital processor, cause the digital processor to:
- receive a request to access the resource over the wireless local area network, the request including a device identifier for a device making the request;
  
  locate context information associated with the device identifier, the context information associated with a previous session between the device and the resource; and
  
  provide the context information for use in a current session between the device and the resource.

19. A method for balancing a load among a plurality of wireless subnetworks, comprising the steps of:
- receiving an indication that a device has established a first connection with a first wireless subnetwork, the device having a device identifier;
  
  determining a user service level associated with the device based on the device identifier and based on a load level for the first wireless subnetwork in comparison to load levels associated with each of the other wireless subnetworks available for connection by the device; and
  
  if a second connection provides a preferable balancing of load levels among the wireless subnetworks, then directing the device to establish the second connection with a second wireless subnetwork based on the determined user service level and the load level of the first wireless subnetwork,

20. A system comprising a digital processor for balancing a load among a plurality of wireless subnetworks, the system comprising:
- a communications interface coupled with the digital processor for receiving an indication that a device has established a first connection with a first wireless subnetwork, the device having a device identifier; and
  
  a gateway application executing on the digital processor for determining a user service level associated with the device based on the device identifier and based on a load level for the first wireless subnetwork in comparison to load levels associated with each of the other wireless subnetworks available for connection by the device, and in response to a second connection providing a preferable balancing of the load levels among the wireless subnetworks, the gateway application directing the device to establish a second connection with a second wireless subnetwork based on the user service level and the load level of the first wireless subnetwork.

21. A computer program product that includes a computer usable medium having computer program instructions stored thereon for balancing load among a plurality of wireless subnetworks, such that the computer program instructions, when performed by a digital processor, cause the digital processor to:
- receive an indication that a device has established a first connection with a first wireless subnetwork, the device having a device identifier;
  
  determine a user service level associated with the device based on the device identifier and based on a load level for the first wireless subnetwork in comparison to load levels associated with each of the other wireless subnetworks available for connection by the device; and
  
  direct the device to establish a second connection with a second wireless subnetwork based on the user service level and the load level of the first wireless subnetwork, if the second connection provides a preferable balancing of load levels among the wireless subnetworks.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Bluesocket Incorporated (ADTRAN Holdings, Inc.)
Original Assignee
Bluesocket Incorporated (ADTRAN Holdings, Inc.)
Inventors
Crosbie, David B.

Granted Patent

US 7,260,638 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/201
CPC Class Codes

H04L 63/08   for authentication of entit...

H04L 63/10   for controlling access to d...

H04L 63/105   Multiple levels of security

H04W 12/065   Continuous authentication

H04W 12/069   using certificates or pre-s...

H04W 12/088   using filters or firewalls

H04W 28/18   Negotiating wireless commun...

H04W 40/00   Communication routing or co...

H04W 80/04   Network layer protocols, e....

H04W 84/12   WLAN [Wireless Local Area N...

Y10S 707/99939   Privileged access

Method and system for enabling seamless roaming in a wireless network

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

546 Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system for enabling seamless roaming in a wireless network

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

546 Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links